f53ea8f80e0d8b515af04494594c6bdf_JaffaCakes118

General

Target

f53ea8f80e0d8b515af04494594c6bdf_JaffaCakes118
Size

114KB
MD5

f53ea8f80e0d8b515af04494594c6bdf
SHA1

34a56b3c7e4542f893afe01467130ba339e84b17
SHA256

8191ebe222c51ae6f8b56d64f4f7d79722c505f4b67c270a6ebd711909545c81
SHA512

26a16f54e0fe192f2e0c3b1fe84ea2459ac136b350ecb3173d144a448c7de51078d17383e9a66509fbbd2f3dbeb711187f4ce6fa4a35465c24c3400118d78b4c
SSDEEP

1536:RvxSbEF0gdPG0MLG2mzH5NPKf+OSBAQ/aALs1vG9+Aw/iwDWLrrABcs:RvrXG8D++HeOovqRh1ky

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f53ea8f80e0d8b515af04494594c6bdf_JaffaCakes118

Files

f53ea8f80e0d8b515af04494594c6bdf_JaffaCakes118
.exe windows:4 windows x86 arch:x86

a6538fc7c8c2ee15b6c02ca3b0cb9b16

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetSystemMetrics
TranslateMessage
CharNextA
GetParent
GetDesktopWindow

gdi32

CreateFontIndirectA
SelectPalette
GetPixel
SetTextAlign
SetStretchBltMode
PatBlt
SaveDC
CreateSolidBrush
CreateCompatibleDC
SetMapMode
RestoreDC
SelectObject
CreatePalette
GetDeviceCaps
DeleteObject
DeleteDC
GetStockObject
CreatePen
LineTo
RectVisible
SetTextColor
GetTextMetricsA
GetClipBox
GetObjectA
SetPixel

kernel32

QueryPerformanceCounter
CopyFileA
GetConsoleOutputCP
GetCurrentProcess
GetCurrentThread
GetCommandLineW
lstrcmpiW
MulDiv
GetVersion
GlobalFindAtomA
GetModuleHandleW
GlobalFindAtomW
RemoveDirectoryA
GetTickCount
GetStartupInfoA
GetACP
GetUserDefaultLangID
GetModuleHandleA
DeleteFileW
DeleteFileA
VirtualAlloc
GetCurrentThreadId
SetCurrentDirectoryA
VirtualFree
GetOEMCP
lstrlenW
GetWindowsDirectoryA
IsDebuggerPresent
lstrcmpiA
GetThreadLocale
GetProcessHeap
lstrlenA
lstrcmpA
GetDriveTypeA
RemoveDirectoryW
GetCurrentProcessId
GetCommandLineA

glu32

gluQuadricCallback

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 80KB - Virtual size: 79KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 13KB - Virtual size: 88KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

a6538fc7c8c2ee15b6c02ca3b0cb9b16

Headers

File Characteristics

Imports

user32

gdi32

kernel32

glu32

Sections

.text Size: 13KB - Virtual size: 13KB

.rdata Size: 7KB - Virtual size: 6KB

.data Size: 80KB - Virtual size: 79KB

.rsrc Size: 13KB - Virtual size: 88KB

.text
Size: 13KB - Virtual size: 13KB

.rdata
Size: 7KB - Virtual size: 6KB

.data
Size: 80KB - Virtual size: 79KB

.rsrc
Size: 13KB - Virtual size: 88KB